@amodalai/runtime 0.1.15 → 0.1.17

package/dist/src/audit/audit-client.js

@@ -1,83 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-const DEFAULT_FLUSH_INTERVAL_MS = 2000;
-const DEFAULT_MAX_BATCH_SIZE = 20;
-export class AuditClient {
-    platformApiUrl;
-    flushIntervalMs;
-    maxBatchSize;
-    pending = new Map();
-    flushTimer = null;
-    constructor(options) {
-        this.platformApiUrl = options.platformApiUrl;
-        this.flushIntervalMs = options.flushIntervalMs ?? DEFAULT_FLUSH_INTERVAL_MS;
-        this.maxBatchSize = options.maxBatchSize ?? DEFAULT_MAX_BATCH_SIZE;
-        this.flushTimer = setInterval(() => {
-            void this.flush();
-        }, this.flushIntervalMs);
-        this.flushTimer.unref();
-    }
-    /**
-     * Queue an audit entry for batched delivery.
-     * Fire-and-forget — never throws.
-     */
-    log(appId, token, entry) {
-        const key = `${appId}:${token}`;
-        let batch = this.pending.get(key);
-        if (!batch) {
-            batch = { appId, token, entries: [] };
-            this.pending.set(key, batch);
-        }
-        batch.entries.push({
-            ...entry,
-            timestamp: entry.timestamp ?? new Date().toISOString(),
-        });
-        if (batch.entries.length >= this.maxBatchSize) {
-            const toSend = batch;
-            this.pending.delete(key);
-            void this.send(toSend);
-        }
-    }
-    /**
-     * Flush all pending batches immediately.
-     */
-    async flush() {
-        const batches = [...this.pending.values()];
-        this.pending.clear();
-        await Promise.all(batches.map((b) => this.send(b)));
-    }
-    /**
-     * Stop the flush timer and drain remaining entries.
-     */
-    async shutdown() {
-        if (this.flushTimer) {
-            clearInterval(this.flushTimer);
-            this.flushTimer = null;
-        }
-        await this.flush();
-    }
-    async send(batch) {
-        try {
-            const controller = new AbortController();
-            const timer = setTimeout(() => controller.abort(), 10000);
-            await fetch(`${this.platformApiUrl}/api/applications/${batch.appId}/audit-logs`, {
-                method: 'POST',
-                signal: controller.signal,
-                headers: {
-                    'Content-Type': 'application/json',
-                    Authorization: `Bearer ${batch.token}`,
-                },
-                body: JSON.stringify({ entries: batch.entries }),
-            });
-            clearTimeout(timer);
-        }
-        catch (err) {
-            // Fire-and-forget — log but don't throw
-            process.stderr.write(`[WARN] Failed to send audit batch: ${err instanceof Error ? err.message : String(err)}\n`);
-        }
-    }
-}
-//# sourceMappingURL=audit-client.js.map

package/dist/src/audit/audit-client.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"audit-client.js","sourceRoot":"","sources":["../../../src/audit/audit-client.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AA8BH,MAAM,yBAAyB,GAAG,IAAI,CAAC;AACvC,MAAM,sBAAsB,GAAG,EAAE,CAAC;AAElC,MAAM,OAAO,WAAW;IACL,cAAc,CAAS;IACvB,eAAe,CAAS;IACxB,YAAY,CAAS;IACrB,OAAO,GAAG,IAAI,GAAG,EAAwB,CAAC;IACnD,UAAU,GAA0C,IAAI,CAAC;IAEjE,YAAY,OAA2B;QACrC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;QAC7C,IAAI,CAAC,eAAe,GAAG,OAAO,CAAC,eAAe,IAAI,yBAAyB,CAAC;QAC5E,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,YAAY,IAAI,sBAAsB,CAAC;QAEnE,IAAI,CAAC,UAAU,GAAG,WAAW,CAAC,GAAG,EAAE;YACjC,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC;QACpB,CAAC,EAAE,IAAI,CAAC,eAAe,CAAC,CAAC;QACzB,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;IAC1B,CAAC;IAED;;;OAGG;IACH,GAAG,CAAC,KAAa,EAAE,KAAa,EAAE,KAAiB;QACjD,MAAM,GAAG,GAAG,GAAG,KAAK,IAAI,KAAK,EAAE,CAAC;QAChC,IAAI,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAClC,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,KAAK,GAAG,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;YACtC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QAC/B,CAAC;QACD,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;YACjB,GAAG,KAAK;YACR,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACvD,CAAC,CAAC;QAEH,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YAC9C,MAAM,MAAM,GAAG,KAAK,CAAC;YACrB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACzB,KAAK,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACzB,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,KAAK;QACT,MAAM,OAAO,GAAG,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;QAC3C,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACrB,MAAM,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACtD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ;QACZ,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YACpB,aAAa,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAC/B,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QACzB,CAAC;QACD,MAAM,IAAI,CAAC,KAAK,EAAE,CAAC;IACrB,CAAC;IAEO,KAAK,CAAC,IAAI,CAAC,KAAmB;QACpC,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;YAE1D,MAAM,KAAK,CACT,GAAG,IAAI,CAAC,cAAc,qBAAqB,KAAK,CAAC,KAAK,aAAa,EACnE;gBACE,MAAM,EAAE,MAAM;gBACd,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,aAAa,EAAE,UAAU,KAAK,CAAC,KAAK,EAAE;iBACvC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC;aACjD,CACF,CAAC;YAEF,YAAY,CAAC,KAAK,CAAC,CAAC;QACtB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,wCAAwC;YACxC,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,sCAAsC,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAC3F,CAAC;QACJ,CAAC;IACH,CAAC;CACF"}

package/dist/src/middleware/auth.test.d.ts

@@ -1,6 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-export {};

package/dist/src/middleware/auth.test.js

@@ -1,260 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-import { describe, it, expect, vi, beforeEach, afterEach, beforeAll } from 'vitest';
-import express from 'express';
-import request from 'supertest';
-import { generateKeyPair, SignJWT, exportJWK, calculateJwkThumbprint } from 'jose';
-import { createAuthMiddleware, getAuthContext } from './auth.js';
-import { errorHandler } from './error-handler.js';
-// Mock fetch globally
-const mockFetch = vi.fn();
-vi.stubGlobal('fetch', mockFetch);
-function meResponse(orgId = 'org-123', appId = 'app-456') {
-    return {
-        ok: true,
-        json: async () => ({
-            org: { id: orgId },
-            app: { id: appId },
-            apps: [{ id: appId }],
-            user: null,
-        }),
-    };
-}
-function createTestApp(platformApiUrl = 'http://localhost:4000', jwksUrl) {
-    const app = express();
-    app.use(express.json());
-    const authMiddleware = createAuthMiddleware({ platformApiUrl, jwksUrl });
-    app.get('/test', authMiddleware, (_req, res) => {
-        const ctx = getAuthContext(res);
-        res.json({
-            authenticated: true,
-            token: ctx?.token,
-            orgId: ctx?.orgId,
-            applicationId: ctx?.applicationId,
-            authMethod: ctx?.authMethod,
-            actor: ctx?.actor,
-        });
-    });
-    app.use(errorHandler);
-    return app;
-}
-describe('auth middleware', () => {
-    beforeEach(() => {
-        vi.clearAllMocks();
-    });
-    afterEach(() => {
-        vi.restoreAllMocks();
-    });
-    it('rejects requests without Authorization header', async () => {
-        const app = createTestApp();
-        const res = await request(app).get('/test');
-        expect(res.status).toBe(401);
-        expect(res.body.error.code).toBe('UNAUTHORIZED');
-        expect(res.body.error.message).toContain('Missing Authorization');
-    });
-    it('rejects non-Bearer auth schemes', async () => {
-        const app = createTestApp();
-        const res = await request(app)
-            .get('/test')
-            .set('Authorization', 'Basic abc123');
-        expect(res.status).toBe(401);
-        expect(res.body.error.message).toContain('Bearer scheme');
-    });
-    it('rejects tokens without ak_ prefix when no JWKS configured', async () => {
-        // Create app without JWKS URL — will fail createJWTVerifier
-        const app = express();
-        app.use(express.json());
-        const authMiddleware = createAuthMiddleware({
-            platformApiUrl: 'http://localhost:4000',
-            jwksUrl: 'not-a-valid-url',
-        });
-        app.get('/test', authMiddleware, (_req, res) => {
-            res.json({ authenticated: true });
-        });
-        app.use(errorHandler);
-        const res = await request(app)
-            .get('/test')
-            .set('Authorization', 'Bearer some-jwt-token');
-        expect(res.status).toBe(401);
-    });
-    it('validates ak_ keys against platform API and returns full context', async () => {
-        mockFetch.mockResolvedValueOnce(meResponse('org-123', 'app-456'));
-        const app = createTestApp();
-        const res = await request(app)
-            .get('/test')
-            .set('Authorization', 'Bearer ak_test-key');
-        expect(res.status).toBe(200);
-        expect(res.body.authenticated).toBe(true);
-        expect(res.body.token).toBe('ak_test-key');
-        expect(res.body.orgId).toBe('org-123');
-        expect(res.body.applicationId).toBe('app-456');
-        expect(res.body.authMethod).toBe('api_key');
-        // Verify fetch was called with correct args
-        expect(mockFetch).toHaveBeenCalledWith('http://localhost:4000/api/me', expect.objectContaining({
-            headers: expect.objectContaining({
-                Authorization: 'Bearer ak_test-key',
-            }),
-        }));
-    });
-    it('rejects invalid ak_ keys (platform returns non-ok)', async () => {
-        mockFetch.mockResolvedValueOnce({
-            ok: false,
-            status: 401,
-        });
-        const app = createTestApp();
-        const res = await request(app)
-            .get('/test')
-            .set('Authorization', 'Bearer ak_bad-key');
-        expect(res.status).toBe(401);
-        expect(res.body.error.code).toBe('UNAUTHORIZED');
-    });
-    it('caches validated keys', async () => {
-        mockFetch.mockResolvedValue(meResponse());
-        const app = createTestApp();
-        // First request — validates against platform API
-        await request(app)
-            .get('/test')
-            .set('Authorization', 'Bearer ak_cached-key');
-        expect(mockFetch).toHaveBeenCalledTimes(1);
-        // Second request — should use cache
-        const res = await request(app)
-            .get('/test')
-            .set('Authorization', 'Bearer ak_cached-key');
-        expect(res.status).toBe(200);
-        expect(mockFetch).toHaveBeenCalledTimes(1); // No additional fetch
-    });
-    it('returns 502 when platform API is unreachable', async () => {
-        mockFetch.mockRejectedValueOnce(new Error('Connection refused'));
-        const app = createTestApp();
-        const res = await request(app)
-            .get('/test')
-            .set('Authorization', 'Bearer ak_test-key');
-        expect(res.status).toBe(502);
-        expect(res.body.error.code).toBe('AUTH_UPSTREAM_ERROR');
-    });
-    describe('JWT verification', () => {
-        let privateKey;
-        let kid;
-        let jwksJson;
-        const jwksUrl = 'http://127.0.0.1:9999/.well-known/jwks.json';
-        beforeAll(async () => {
-            const pair = await generateKeyPair('ES256', { extractable: true });
-            privateKey = pair.privateKey;
-            const publicJwk = await exportJWK(pair.publicKey);
-            kid = await calculateJwkThumbprint(publicJwk);
-            jwksJson = {
-                keys: [{ ...publicJwk, kid, alg: 'ES256', use: 'sig' }],
-            };
-        });
-        it('validates platform JWTs locally without /api/me calls', async () => {
-            // Mock fetch to serve JWKS
-            mockFetch.mockImplementation(async (url) => {
-                if (url.includes('.well-known/jwks.json')) {
-                    return { ok: true, status: 200, json: async () => jwksJson };
-                }
-                throw new Error(`Unexpected fetch: ${url}`);
-            });
-            const token = await new SignJWT({
-                org_id: 'org-jwt',
-                app_id: 'app-jwt',
-            })
-                .setProtectedHeader({ alg: 'ES256', kid })
-                .setIssuer('aitize-platform')
-                .setSubject('app-jwt')
-                .setIssuedAt()
-                .setExpirationTime('1h')
-                .sign(privateKey);
-            const app = createTestApp('http://localhost:4000', jwksUrl);
-            const res = await request(app)
-                .get('/test')
-                .set('Authorization', `Bearer ${token}`);
-            expect(res.status).toBe(200);
-            expect(res.body.token).toBe(token);
-            expect(res.body.orgId).toBe('org-jwt');
-            expect(res.body.applicationId).toBe('app-jwt');
-            expect(res.body.applicationId).toBe('app-jwt');
-            expect(res.body.authMethod).toBe('platform_jwt');
-            // Only JWKS fetch should have been made, not /api/me
-            for (const call of mockFetch.mock.calls) {
-                expect(String(call[0])).not.toContain('/api/me');
-            }
-        });
-        it('includes actor in AuthContext when JWT has actor claim', async () => {
-            mockFetch.mockImplementation(async (url) => {
-                if (url.includes('.well-known/jwks.json')) {
-                    return { ok: true, status: 200, json: async () => jwksJson };
-                }
-                throw new Error(`Unexpected fetch: ${url}`);
-            });
-            const token = await new SignJWT({
-                org_id: 'org-jwt',
-                app_id: 'app-jwt',
-                actor: 'bob@example.com',
-            })
-                .setProtectedHeader({ alg: 'ES256', kid })
-                .setIssuer('aitize-platform')
-                .setSubject('app-jwt')
-                .setIssuedAt()
-                .setExpirationTime('1h')
-                .sign(privateKey);
-            const app = createTestApp('http://localhost:4000', jwksUrl);
-            const res = await request(app)
-                .get('/test')
-                .set('Authorization', `Bearer ${token}`);
-            expect(res.status).toBe(200);
-            expect(res.body.actor).toBe('bob@example.com');
-            expect(res.body.authMethod).toBe('platform_jwt');
-        });
-        it('omits actor from AuthContext when JWT has no actor claim', async () => {
-            mockFetch.mockImplementation(async (url) => {
-                if (url.includes('.well-known/jwks.json')) {
-                    return { ok: true, status: 200, json: async () => jwksJson };
-                }
-                throw new Error(`Unexpected fetch: ${url}`);
-            });
-            const token = await new SignJWT({
-                org_id: 'org-jwt',
-                app_id: 'app-jwt',
-            })
-                .setProtectedHeader({ alg: 'ES256', kid })
-                .setIssuer('aitize-platform')
-                .setSubject('app-jwt')
-                .setIssuedAt()
-                .setExpirationTime('1h')
-                .sign(privateKey);
-            const app = createTestApp('http://localhost:4000', jwksUrl);
-            const res = await request(app)
-                .get('/test')
-                .set('Authorization', `Bearer ${token}`);
-            expect(res.status).toBe(200);
-            expect(res.body.actor).toBeUndefined();
-        });
-        it('rejects expired JWTs', async () => {
-            mockFetch.mockImplementation(async (url) => {
-                if (url.includes('.well-known/jwks.json')) {
-                    return { ok: true, status: 200, json: async () => jwksJson };
-                }
-                throw new Error(`Unexpected fetch: ${url}`);
-            });
-            const token = await new SignJWT({
-                org_id: 'org-1',
-                app_id: 'app-1',
-            })
-                .setProtectedHeader({ alg: 'ES256', kid })
-                .setIssuer('aitize-platform')
-                .setSubject('app-1')
-                .setIssuedAt(Math.floor(Date.now() / 1000) - 7200)
-                .setExpirationTime(Math.floor(Date.now() / 1000) - 3600)
-                .sign(privateKey);
-            const app = createTestApp('http://localhost:4000', jwksUrl);
-            const res = await request(app)
-                .get('/test')
-                .set('Authorization', `Bearer ${token}`);
-            expect(res.status).toBe(401);
-        });
-    });
-});
-//# sourceMappingURL=auth.test.js.map

package/dist/src/middleware/auth.test.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.test.js","sourceRoot":"","sources":["../../../src/middleware/auth.test.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACpF,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,OAAO,MAAM,WAAW,CAAC;AAChC,OAAO,EAAE,eAAe,EAAE,OAAO,EAAE,SAAS,EAAE,sBAAsB,EAAE,MAAM,MAAM,CAAC;AAEnF,OAAO,EAAE,oBAAoB,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AACjE,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,sBAAsB;AACtB,MAAM,SAAS,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;AAC1B,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;AAElC,SAAS,UAAU,CAAC,KAAK,GAAG,SAAS,EAAE,KAAK,GAAG,SAAS;IACtD,OAAO;QACL,EAAE,EAAE,IAAI;QACR,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;YACjB,GAAG,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE;YAClB,GAAG,EAAE,EAAE,EAAE,EAAE,KAAK,EAAE;YAClB,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC;YACrB,IAAI,EAAE,IAAI;SACX,CAAC;KACH,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CAAC,cAAc,GAAG,uBAAuB,EAAE,OAAgB;IAC/E,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC;IACtB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;IAExB,MAAM,cAAc,GAAG,oBAAoB,CAAC,EAAE,cAAc,EAAE,OAAO,EAAE,CAAC,CAAC;IAEzE,GAAG,CAAC,GAAG,CAAC,OAAO,EAAE,cAAc,EAAE,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;QAC7C,MAAM,GAAG,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;QAChC,GAAG,CAAC,IAAI,CAAC;YACP,aAAa,EAAE,IAAI;YACnB,KAAK,EAAE,GAAG,EAAE,KAAK;YACjB,KAAK,EAAE,GAAG,EAAE,KAAK;YACjB,aAAa,EAAE,GAAG,EAAE,aAAa;YACjC,UAAU,EAAE,GAAG,EAAE,UAAU;YAC3B,KAAK,EAAE,GAAG,EAAE,KAAK;SAClB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IACtB,OAAO,GAAG,CAAC;AACb,CAAC;AAED,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;IAC/B,UAAU,CAAC,GAAG,EAAE;QACd,EAAE,CAAC,aAAa,EAAE,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,EAAE,CAAC,eAAe,EAAE,CAAC;IACvB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;QAC7D,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAE5C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACjD,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,uBAAuB,CAAC,CAAC;IACpE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,iCAAiC,EAAE,KAAK,IAAI,EAAE;QAC/C,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;aAC3B,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,cAAc,CAAC,CAAC;QAExC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,eAAe,CAAC,CAAC;IAC5D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2DAA2D,EAAE,KAAK,IAAI,EAAE;QACzE,4DAA4D;QAC5D,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC;QACtB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;QACxB,MAAM,cAAc,GAAG,oBAAoB,CAAC;YAC1C,cAAc,EAAE,uBAAuB;YACvC,OAAO,EAAE,iBAAiB;SAC3B,CAAC,CAAC;QACH,GAAG,CAAC,GAAG,CAAC,OAAO,EAAE,cAAc,EAAE,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;YAC7C,GAAG,CAAC,IAAI,CAAC,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAEtB,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;aAC3B,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,uBAAuB,CAAC,CAAC;QAEjD,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kEAAkE,EAAE,KAAK,IAAI,EAAE;QAChF,SAAS,CAAC,qBAAqB,CAAC,UAAU,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC;QAElE,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;aAC3B,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,oBAAoB,CAAC,CAAC;QAE9C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC1C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAC3C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACvC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC/C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAE5C,4CAA4C;QAC5C,MAAM,CAAC,SAAS,CAAC,CAAC,oBAAoB,CACpC,8BAA8B,EAC9B,MAAM,CAAC,gBAAgB,CAAC;YACtB,OAAO,EAAE,MAAM,CAAC,gBAAgB,CAAC;gBAC/B,aAAa,EAAE,oBAAoB;aACpC,CAAC;SACH,CAAC,CACH,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oDAAoD,EAAE,KAAK,IAAI,EAAE;QAClE,SAAS,CAAC,qBAAqB,CAAC;YAC9B,EAAE,EAAE,KAAK;YACT,MAAM,EAAE,GAAG;SACZ,CAAC,CAAC;QAEH,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;aAC3B,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,mBAAmB,CAAC,CAAC;QAE7C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IACnD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uBAAuB,EAAE,KAAK,IAAI,EAAE;QACrC,SAAS,CAAC,iBAAiB,CAAC,UAAU,EAAE,CAAC,CAAC;QAE1C,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAE5B,iDAAiD;QACjD,MAAM,OAAO,CAAC,GAAG,CAAC;aACf,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,sBAAsB,CAAC,CAAC;QAEhD,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAC;QAE3C,oCAAoC;QACpC,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;aAC3B,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,sBAAsB,CAAC,CAAC;QAEhD,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAC,CAAC,sBAAsB;IACpE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC5D,SAAS,CAAC,qBAAqB,CAAC,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC,CAAC;QAEjE,MAAM,GAAG,GAAG,aAAa,EAAE,CAAC;QAC5B,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;aAC3B,GAAG,CAAC,OAAO,CAAC;aACZ,GAAG,CAAC,eAAe,EAAE,oBAAoB,CAAC,CAAC;QAE9C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;IAC1D,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,IAAI,UAAqB,CAAC;QAC1B,IAAI,GAAW,CAAC;QAChB,IAAI,QAAkD,CAAC;QACvD,MAAM,OAAO,GAAG,6CAA6C,CAAC;QAE9D,SAAS,CAAC,KAAK,IAAI,EAAE;YACnB,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,OAAO,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC;YACnE,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC;YAC7B,MAAM,SAAS,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAClD,GAAG,GAAG,MAAM,sBAAsB,CAAC,SAAS,CAAC,CAAC;YAC9C,QAAQ,GAAG;gBACT,IAAI,EAAE,CAAC,EAAE,GAAG,SAAS,EAAE,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;aACxD,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;YACrE,2BAA2B;YAC3B,SAAS,CAAC,kBAAkB,CAAC,KAAK,EAAE,GAAW,EAAE,EAAE;gBACjD,IAAI,GAAG,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,CAAC;oBAC1C,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;gBAC/D,CAAC;gBACD,MAAM,IAAI,KAAK,CAAC,qBAAqB,GAAG,EAAE,CAAC,CAAC;YAC9C,CAAC,CAAC,CAAC;YAEH,MAAM,KAAK,GAAG,MAAM,IAAI,OAAO,CAAC;gBAC9B,MAAM,EAAE,SAAS;gBACjB,MAAM,EAAE,SAAS;aAElB,CAAC;iBACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;iBACzC,SAAS,CAAC,iBAAiB,CAAC;iBAC5B,UAAU,CAAC,SAAS,CAAC;iBACrB,WAAW,EAAE;iBACb,iBAAiB,CAAC,IAAI,CAAC;iBACvB,IAAI,CAAC,UAAU,CAAC,CAAC;YAEpB,MAAM,GAAG,GAAG,aAAa,CAAC,uBAAuB,EAAE,OAAO,CAAC,CAAC;YAC5D,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAC3B,GAAG,CAAC,OAAO,CAAC;iBACZ,GAAG,CAAC,eAAe,EAAE,UAAU,KAAK,EAAE,CAAC,CAAC;YAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACnC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACvC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC/C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC/C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;YAEjD,qDAAqD;YACrD,KAAK,MAAM,IAAI,IAAI,SAAS,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACxC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;YACnD,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;YACtE,SAAS,CAAC,kBAAkB,CAAC,KAAK,EAAE,GAAW,EAAE,EAAE;gBACjD,IAAI,GAAG,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,CAAC;oBAC1C,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;gBAC/D,CAAC;gBACD,MAAM,IAAI,KAAK,CAAC,qBAAqB,GAAG,EAAE,CAAC,CAAC;YAC9C,CAAC,CAAC,CAAC;YAEH,MAAM,KAAK,GAAG,MAAM,IAAI,OAAO,CAAC;gBAC9B,MAAM,EAAE,SAAS;gBACjB,MAAM,EAAE,SAAS;gBAEjB,KAAK,EAAE,iBAAiB;aACzB,CAAC;iBACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;iBACzC,SAAS,CAAC,iBAAiB,CAAC;iBAC5B,UAAU,CAAC,SAAS,CAAC;iBACrB,WAAW,EAAE;iBACb,iBAAiB,CAAC,IAAI,CAAC;iBACvB,IAAI,CAAC,UAAU,CAAC,CAAC;YAEpB,MAAM,GAAG,GAAG,aAAa,CAAC,uBAAuB,EAAE,OAAO,CAAC,CAAC;YAC5D,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAC3B,GAAG,CAAC,OAAO,CAAC;iBACZ,GAAG,CAAC,eAAe,EAAE,UAAU,KAAK,EAAE,CAAC,CAAC;YAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;YAC/C,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0DAA0D,EAAE,KAAK,IAAI,EAAE;YACxE,SAAS,CAAC,kBAAkB,CAAC,KAAK,EAAE,GAAW,EAAE,EAAE;gBACjD,IAAI,GAAG,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,CAAC;oBAC1C,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;gBAC/D,CAAC;gBACD,MAAM,IAAI,KAAK,CAAC,qBAAqB,GAAG,EAAE,CAAC,CAAC;YAC9C,CAAC,CAAC,CAAC;YAEH,MAAM,KAAK,GAAG,MAAM,IAAI,OAAO,CAAC;gBAC9B,MAAM,EAAE,SAAS;gBACjB,MAAM,EAAE,SAAS;aAElB,CAAC;iBACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;iBACzC,SAAS,CAAC,iBAAiB,CAAC;iBAC5B,UAAU,CAAC,SAAS,CAAC;iBACrB,WAAW,EAAE;iBACb,iBAAiB,CAAC,IAAI,CAAC;iBACvB,IAAI,CAAC,UAAU,CAAC,CAAC;YAEpB,MAAM,GAAG,GAAG,aAAa,CAAC,uBAAuB,EAAE,OAAO,CAAC,CAAC;YAC5D,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAC3B,GAAG,CAAC,OAAO,CAAC;iBACZ,GAAG,CAAC,eAAe,EAAE,UAAU,KAAK,EAAE,CAAC,CAAC;YAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC7B,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,aAAa,EAAE,CAAC;QACzC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE;YACpC,SAAS,CAAC,kBAAkB,CAAC,KAAK,EAAE,GAAW,EAAE,EAAE;gBACjD,IAAI,GAAG,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,CAAC;oBAC1C,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;gBAC/D,CAAC;gBACD,MAAM,IAAI,KAAK,CAAC,qBAAqB,GAAG,EAAE,CAAC,CAAC;YAC9C,CAAC,CAAC,CAAC;YAEH,MAAM,KAAK,GAAG,MAAM,IAAI,OAAO,CAAC;gBAC9B,MAAM,EAAE,OAAO;gBACf,MAAM,EAAE,OAAO;aAChB,CAAC;iBACC,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;iBACzC,SAAS,CAAC,iBAAiB,CAAC;iBAC5B,UAAU,CAAC,OAAO,CAAC;iBACnB,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC;iBACjD,iBAAiB,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC;iBACvD,IAAI,CAAC,UAAU,CAAC,CAAC;YAEpB,MAAM,GAAG,GAAG,aAAa,CAAC,uBAAuB,EAAE,OAAO,CAAC,CAAC;YAC5D,MAAM,GAAG,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;iBAC3B,GAAG,CAAC,OAAO,CAAC;iBACZ,GAAG,CAAC,eAAe,EAAE,UAAU,KAAK,EAAE,CAAC,CAAC;YAE3C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC/B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/src/routes/sessions.d.ts

@@ -1,14 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-import { Router } from 'express';
-export interface SessionsRouterOptions {
-    platformApiUrl: string;
-}
-/**
- * Proxy routes for session history.
- * Forwards to platform-api /api/applications/{applicationId}/sessions endpoints.
- */
-export declare function createSessionsRouter(options: SessionsRouterOptions): Router;

package/dist/src/routes/sessions.js

@@ -1,82 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-import { Router } from 'express';
-import { getAuthContext } from '../middleware/auth.js';
-/**
- * Proxy routes for session history.
- * Forwards to platform-api /api/applications/{applicationId}/sessions endpoints.
- */
-export function createSessionsRouter(options) {
-    const router = Router();
-    // List sessions for the authenticated application
-    router.get('/sessions/history', async (req, res, next) => {
-        try {
-            const auth = getAuthContext(res);
-            if (!auth?.applicationId || !auth.token) {
-                res.status(401).json({ error: { code: 'UNAUTHORIZED', message: 'Missing auth context' } });
-                return;
-            }
-            const tagsParam = req.query['tags'];
-            const qs = tagsParam ? `?tags=${String(tagsParam)}` : '';
-            const url = `${options.platformApiUrl}/api/applications/${auth.applicationId}/sessions${qs}`;
-            const response = await fetch(url, {
-                headers: { Authorization: `Bearer ${auth.token}` },
-            });
-            const data = await response.json();
-            res.status(response.status).json(data);
-        }
-        catch (err) {
-            next(err);
-        }
-    });
-    // Get a single session with full messages
-    router.get('/sessions/history/:id', async (req, res, next) => {
-        try {
-            const auth = getAuthContext(res);
-            if (!auth?.applicationId || !auth.token) {
-                res.status(401).json({ error: { code: 'UNAUTHORIZED', message: 'Missing auth context' } });
-                return;
-            }
-            const sessionId = req.params['id'];
-            const url = `${options.platformApiUrl}/api/applications/${auth.applicationId}/sessions/${sessionId}`;
-            const response = await fetch(url, {
-                headers: { Authorization: `Bearer ${auth.token}` },
-            });
-            const data = await response.json();
-            res.status(response.status).json(data);
-        }
-        catch (err) {
-            next(err);
-        }
-    });
-    // Update session tags/title
-    router.patch('/sessions/history/:id', async (req, res, next) => {
-        try {
-            const auth = getAuthContext(res);
-            if (!auth?.applicationId || !auth.token) {
-                res.status(401).json({ error: { code: 'UNAUTHORIZED', message: 'Missing auth context' } });
-                return;
-            }
-            const sessionId = req.params['id'];
-            const url = `${options.platformApiUrl}/api/applications/${auth.applicationId}/sessions/${sessionId}`;
-            const response = await fetch(url, {
-                method: 'PATCH',
-                headers: {
-                    'Content-Type': 'application/json',
-                    Authorization: `Bearer ${auth.token}`,
-                },
-                body: JSON.stringify(req.body),
-            });
-            const data = await response.json();
-            res.status(response.status).json(data);
-        }
-        catch (err) {
-            next(err);
-        }
-    });
-    return router;
-}
-//# sourceMappingURL=sessions.js.map

package/dist/src/routes/sessions.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"sessions.js","sourceRoot":"","sources":["../../../src/routes/sessions.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAMvD;;;GAGG;AACH,MAAM,UAAU,oBAAoB,CAAC,OAA8B;IACjE,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC;IAExB,kDAAkD;IAClD,MAAM,CAAC,GAAG,CAAC,mBAAmB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;QACvD,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;YACjC,IAAI,CAAC,IAAI,EAAE,aAAa,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACxC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,sBAAsB,EAAE,EAAE,CAAC,CAAC;gBAC3F,OAAO;YACT,CAAC;YAED,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;YACpC,MAAM,EAAE,GAAG,SAAS,CAAC,CAAC,CAAC,SAAS,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACzD,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,cAAc,qBAAqB,IAAI,CAAC,aAAa,YAAY,EAAE,EAAE,CAAC;YAE7F,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,IAAI,CAAC,KAAK,EAAE,EAAE;aACnD,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACzC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,GAAG,CAAC,CAAC;QACZ,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,0CAA0C;IAC1C,MAAM,CAAC,GAAG,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;QAC3D,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;YACjC,IAAI,CAAC,IAAI,EAAE,aAAa,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACxC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,sBAAsB,EAAE,EAAE,CAAC,CAAC;gBAC3F,OAAO;YACT,CAAC;YAED,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;YACnC,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,cAAc,qBAAqB,IAAI,CAAC,aAAa,aAAa,SAAS,EAAE,CAAC;YAErG,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,IAAI,CAAC,KAAK,EAAE,EAAE;aACnD,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACzC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,GAAG,CAAC,CAAC;QACZ,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,4BAA4B;IAC5B,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;QAC7D,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;YACjC,IAAI,CAAC,IAAI,EAAE,aAAa,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACxC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,sBAAsB,EAAE,EAAE,CAAC,CAAC;gBAC3F,OAAO;YACT,CAAC;YAED,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;YACnC,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,cAAc,qBAAqB,IAAI,CAAC,aAAa,aAAa,SAAS,EAAE,CAAC;YAErG,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,MAAM,EAAE,OAAO;gBACf,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,aAAa,EAAE,UAAU,IAAI,CAAC,KAAK,EAAE;iBACtC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC;aAC/B,CAAC,CAAC;YAEH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACnC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACzC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,GAAG,CAAC,CAAC;QACZ,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/src/utils/jwt-verify.d.ts

@@ -1,19 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-export interface JWTVerifierOptions {
-    jwksUrl: string;
-    issuer?: string;
-}
-export interface PlatformJWTClaims {
-    org_id: string;
-    app_id: string;
-    actor?: string;
-}
-/**
- * Create a JWT verifier that validates tokens against a remote JWKS endpoint.
- * The JWKS is auto-fetched and cached by the `jose` library.
- */
-export declare function createJWTVerifier(options: JWTVerifierOptions): (token: string) => Promise<PlatformJWTClaims | null>;

package/dist/src/utils/jwt-verify.js

@@ -1,32 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-import { createRemoteJWKSet, jwtVerify } from 'jose';
-/**
- * Create a JWT verifier that validates tokens against a remote JWKS endpoint.
- * The JWKS is auto-fetched and cached by the `jose` library.
- */
-export function createJWTVerifier(options) {
-    const jwks = createRemoteJWKSet(new URL(options.jwksUrl));
-    const issuer = options.issuer ?? 'aitize-platform';
-    return async (token) => {
-        try {
-            const { payload } = await jwtVerify(token, jwks, { issuer });
-            // eslint-disable-next-line @typescript-eslint/no-unsafe-type-assertion
-            const actor = payload['actor'];
-            return {
-                // eslint-disable-next-line @typescript-eslint/no-unsafe-type-assertion
-                org_id: payload['org_id'] ?? '',
-                // eslint-disable-next-line @typescript-eslint/no-unsafe-type-assertion
-                app_id: payload['app_id'] ?? '',
-                ...(actor ? { actor } : {}),
-            };
-        }
-        catch {
-            return null;
-        }
-    };
-}
-//# sourceMappingURL=jwt-verify.js.map

package/dist/src/utils/jwt-verify.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"jwt-verify.js","sourceRoot":"","sources":["../../../src/utils/jwt-verify.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,kBAAkB,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AAcrD;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAC/B,OAA2B;IAE3B,MAAM,IAAI,GAAoB,kBAAkB,CAAC,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;IAC3E,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,iBAAiB,CAAC;IAEnD,OAAO,KAAK,EAAE,KAAa,EAAqC,EAAE;QAChE,IAAI,CAAC;YACH,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;YAC7D,uEAAuE;YACvE,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAuB,CAAC;YACrD,OAAO;gBACL,uEAAuE;gBACvE,MAAM,EAAG,OAAO,CAAC,QAAQ,CAAY,IAAI,EAAE;gBAC3C,uEAAuE;gBACvE,MAAM,EAAG,OAAO,CAAC,QAAQ,CAAY,IAAI,EAAE;gBAC3C,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aAC5B,CAAC;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC,CAAC;AACJ,CAAC"}

package/dist/src/utils/jwt-verify.test.d.ts

@@ -1,6 +0,0 @@
-/**
- * @license
- * Copyright 2025 Amodal Labs, Inc.
- * SPDX-License-Identifier: MIT
- */
-export {};